Описание
undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps may have their directory structures predicted through requests without trailing slashes via the api.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | needs-triage | |
| disco | ignored | end of life |
| eoan | released | 2.0.23-1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | released | 2.0.23-1 |
| esm-apps/jammy | released | 2.0.23-1 |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps may have their directory structures predicted through requests without trailing slashes via the api.
undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps may have their directory structures predicted through requests without trailing slashes via the api.
undertow before version 2.0.23.Final is vulnerable to an information l ...
Undertow Missing Authorization when requesting a protected directory without trailing slash
5 Medium
CVSS2
7.5 High
CVSS3